Oval Definition:oval:org.opensuse.security:def:6139
Revision Date:2022-08-18Version:1
Title:Security update for ucode-intel (Moderate)
Description:

This update for ucode-intel fixes the following issues:

Updated to Intel CPU Microcode 20220809 release (bsc#1201727):

- CVE-2022-21233: Fixed an issue where stale data may have been leaked from the legacy xAPIC MMIO region, which could be used to compromise an SGX enclave (INTEL-SA-00657). See also: https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00657.html

Other fixes:

- Update for functional issues. See also: https://www.intel.com/content/www/us/en/processors/xeon/scalable/xeon-scalable-spec-update.html?wapkw=processor+specification+update

- Updated Platforms:

| Processor | Stepping | F-M-S/PI | Old Ver | New Ver | Products |:---------------|:---------|:------------|:---------|:---------|:--------- | SKX-SP | B1 | 06-55-03/97 | 0100015d | 0100015e | Xeon Scalable | SKX-SP | H0/M0/U0 | 06-55-04/b7 | 02006d05 | 02006e05 | Xeon Scalable | SKX-D | M1 | 06-55-04/b7 | 02006d05 | 02006e05 | Xeon D-21xx | ICX-SP | D0 | 06-6a-06/87 | 0d000363 | 0d000375 | Xeon Scalable Gen3 | GLK | B0 | 06-7a-01/01 | 0000003a | 0000003c | Pentium Silver N/J5xxx, Celeron N/J4xxx | GLK-R | R0 | 06-7a-08/01 | 0000001e | 00000020 | Pentium J5040/N5030, Celeron J4125/J4025/N4020/N4120 | ICL-U/Y | D1 | 06-7e-05/80 | 000000b0 | 000000b2 | Core Gen10 Mobile | TGL-R | C0 | 06-8c-02/c2 | 00000026 | 00000028 | Core Gen11 Mobile | TGL-H | R0 | 06-8d-01/c2 | 0000003e | 00000040 | Core Gen11 Mobile | RKL-S | B0 | 06-a7-01/02 | 00000053 | 00000054 | Core Gen11 | ADL | C0 | 06-97-02/03 | 0000001f | 00000022 | Core Gen12 | ADL | C0 | 06-97-05/03 | 0000001f | 00000022 | Core Gen12 | ADL | L0 | 06-9a-03/80 | 0000041c | 00000421 | Core Gen12 | ADL | L0 | 06-9a-04/80 | 0000041c | 00000421 | Core Gen12 | ADL | C0 | 06-bf-02/03 | 0000001f | 00000022 | Core Gen12 | ADL | C0 | 06-bf-05/03 | 0000001f | 00000022 | Core Gen12 ------------------------------------------------------------------
Family:unixClass:patch
Status:Reference(s):1188457
1188458
1188459
1188460
1188461
1188462
1201727
CVE-2008-1227
CVE-2008-1227
CVE-2009-1720
CVE-2009-1721
CVE-2010-2252
CVE-2010-3609
CVE-2011-0020
CVE-2011-0064
CVE-2011-0421
CVE-2011-2513
CVE-2011-2514
CVE-2011-3377
CVE-2011-3602
CVE-2012-1162
CVE-2012-1163
CVE-2012-3422
CVE-2012-3423
CVE-2012-4540
CVE-2012-4929
CVE-2013-1926
CVE-2013-1927
CVE-2013-2139
CVE-2013-4238
CVE-2013-4349
CVE-2014-3230
CVE-2014-4877
CVE-2015-0797
CVE-2015-2059
CVE-2015-2331
CVE-2015-5234
CVE-2015-5235
CVE-2016-0772
CVE-2016-1000110
CVE-2016-1521
CVE-2016-1523
CVE-2016-1526
CVE-2016-4912
CVE-2016-4971
CVE-2016-5636
CVE-2016-5699
CVE-2016-6354
CVE-2016-7098
CVE-2016-7567
CVE-2016-9445
CVE-2016-9446
CVE-2016-9447
CVE-2016-9809
CVE-2017-12596
CVE-2017-5436
CVE-2017-6507
CVE-2017-6508
CVE-2017-9110
CVE-2017-9114
CVE-2018-7999
CVE-2021-20298
CVE-2021-20299
CVE-2021-20300
CVE-2021-20302
CVE-2021-20303
CVE-2021-20304
CVE-2021-3476
CVE-2022-21233
SUSE-SU-2022:2842-1
Platform(s):openSUSE 13.1
openSUSE 13.1 NonFree
openSUSE 13.2
openSUSE 13.2 NonFree
SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5
SUSE Linux Enterprise Build System Kit 12
SUSE Linux Enterprise Build System Kit 12 SP1
SUSE Linux Enterprise Build System Kit 12 SP2
SUSE Linux Enterprise Build System Kit 12 SP3
SUSE Linux Enterprise Build System Kit 12 SP4
SUSE Linux Enterprise Desktop 11 SP2
SUSE Linux Enterprise Desktop 11 SP3
SUSE Linux Enterprise Desktop 12
SUSE Linux Enterprise Desktop 12 SP1
SUSE Linux Enterprise Desktop 12 SP3
SUSE Linux Enterprise Desktop 12 SP4
SUSE Linux Enterprise for SAP 12
SUSE Linux Enterprise for SAP 12 SP1
SUSE Linux Enterprise High Availability 12 SP2
SUSE Linux Enterprise High Availability 12 SP5
SUSE Linux Enterprise High Performance Computing 12 SP5
SUSE Linux Enterprise Live Patching 12
SUSE Linux Enterprise Live Patching 12 SP3
SUSE Linux Enterprise Module for Advanced Systems Management 12
SUSE Linux Enterprise Module for Containers 12
SUSE Linux Enterprise Module for High Performance Computing 12
SUSE Linux Enterprise Module for Legacy Software 12
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP3
SUSE Linux Enterprise Server 11 SP1
SUSE Linux Enterprise Server 11 SP2
SUSE Linux Enterprise Server 11 SP3
SUSE Linux Enterprise Server 11 SP4
SUSE Linux Enterprise Server 11-SECURITY
SUSE Linux Enterprise Server 12
SUSE Linux Enterprise Server 12 SP1
SUSE Linux Enterprise Server 12 SP1-LTSS
SUSE Linux Enterprise Server 12 SP2
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP5
SUSE Linux Enterprise Server for Raspberry Pi 12 SP2
SUSE Linux Enterprise Server for SAP Applications 12 SP2
SUSE Linux Enterprise Server for SAP Applications 12 SP5
SUSE Linux Enterprise Server for VMWare 11 SP3
SUSE Linux Enterprise Software Development Kit 11 SP2
SUSE Linux Enterprise Software Development Kit 11 SP3
SUSE Linux Enterprise Software Development Kit 11 SP4
SUSE Linux Enterprise Software Development Kit 12
SUSE Linux Enterprise Software Development Kit 12 SP1
SUSE Linux Enterprise Software Development Kit 12 SP2
SUSE Linux Enterprise Software Development Kit 12 SP3
SUSE Linux Enterprise Workstation Extension 12 SP2
SUSE Linux Enterprise Workstation Extension 12 SP4
Product(s):
Definition Synopsis
  • SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5 is installed
  • AND python-setuptools-1.1.7-7.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Build System Kit 12 is installed
  • AND Package Information
  • libreoffice-4.3.5.2-10 is installed
  • OR libreoffice-sdk-4.3.5.2-10 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Build System Kit 12 SP1 is installed
  • AND Package Information
  • libreoffice-5.1.3.2-22 is installed
  • OR libreoffice-sdk-5.1.3.2-22 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Build System Kit 12 SP2 is installed
  • AND kernel-zfcpdump-4.4.59-92.24 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Build System Kit 12 SP3 is installed
  • AND Package Information
  • libpoppler-cpp0-0.43.0-16.5 is installed
  • OR poppler-0.43.0-16.5 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Build System Kit 12 SP4 is installed
  • AND Package Information
  • krb5-mini-1.12.5-40.31 is installed
  • OR krb5-mini-devel-1.12.5-40.31 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 11 SP2 is installed
  • AND Package Information
  • Mesa-7.11.2-0.9.1 is installed
  • OR Mesa-32bit-7.11.2-0.9.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 11 SP3 is installed
  • AND Package Information
  • MozillaFirefox-31.8.0esr-0.10.1 is installed
  • OR MozillaFirefox-translations-31.8.0esr-0.10.1 is installed
  • OR libfreebl3-3.19.2_CKBI_1.98-0.10.1 is installed
  • OR libfreebl3-32bit-3.19.2_CKBI_1.98-0.10.1 is installed
  • OR libsoftokn3-3.19.2_CKBI_1.98-0.10.1 is installed
  • OR libsoftokn3-32bit-3.19.2_CKBI_1.98-0.10.1 is installed
  • OR mozilla-nspr-4.10.8-0.5.1 is installed
  • OR mozilla-nspr-32bit-4.10.8-0.5.1 is installed
  • OR mozilla-nss-3.19.2_CKBI_1.98-0.10.1 is installed
  • OR mozilla-nss-32bit-3.19.2_CKBI_1.98-0.10.1 is installed
  • OR mozilla-nss-tools-3.19.2_CKBI_1.98-0.10.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 is installed
  • AND Package Information
  • tigervnc-1.3.0-22 is installed
  • OR xorg-x11-Xvnc-1.3.0-22 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP1 is installed
  • AND Package Information
  • libsilc-1_1-2-1.1.10-24 is installed
  • OR libsilcclient-1_1-3-1.1.10-24 is installed
  • OR silc-toolkit-1.1.10-24 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP3 is installed
  • AND Package Information
  • openslp-2.0.0-17 is installed
  • OR openslp-32bit-2.0.0-17 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP4 is installed
  • AND Package Information
  • apparmor-docs-2.8.2-49 is installed
  • OR apparmor-parser-2.8.2-49 is installed
  • OR apparmor-profiles-2.8.2-49 is installed
  • OR apparmor-utils-2.8.2-49 is installed
  • OR libapparmor1-2.8.2-49 is installed
  • OR libapparmor1-32bit-2.8.2-49 is installed
  • OR pam_apparmor-2.8.2-49 is installed
  • OR pam_apparmor-32bit-2.8.2-49 is installed
  • OR perl-apparmor-2.8.2-49 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise for SAP 12 is installed
  • AND Package Information
  • kgraft-patch-3_12_60-52_54-default-4-2 is installed
  • OR kgraft-patch-3_12_60-52_54-xen-4-2 is installed
  • OR kgraft-patch-SLE12_Update_15-4-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise for SAP 12 SP1 is installed
  • AND sudo-1.8.10p3-2.16.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise High Availability 12 SP2 is installed
  • AND Package Information
  • cluster-md-kmp-default-4.4.21-69 is installed
  • OR cluster-network-kmp-default-4.4.21-69 is installed
  • OR dlm-kmp-default-4.4.21-69 is installed
  • OR gfs2-kmp-default-4.4.21-69 is installed
  • OR ocfs2-kmp-default-4.4.21-69 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise High Availability 12 SP5 is installed
  • AND libpcreposix0-8.39-8.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise High Performance Computing 12 SP5 is installed
  • AND Package Information
  • aaa_base-13.2+git20140911.61c1681-38.13 is installed
  • OR aaa_base-extras-13.2+git20140911.61c1681-38.13 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Live Patching 12 is installed
  • AND Package Information
  • kgraft-patch-3_12_51-60_20-default-1-4 is installed
  • OR kgraft-patch-3_12_51-60_20-xen-1-4 is installed
  • OR kgraft-patch-SLE12-SP1_Update_1-1-4 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Live Patching 12 SP3 is installed
  • AND Package Information
  • kgraft-patch-4_4_82-6_3-default-3-2 is installed
  • OR kgraft-patch-SLE12-SP3_Update_1-3-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Advanced Systems Management 12 is installed
  • AND python-pycrypto-2.6.1-10.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Containers 12 is installed
  • AND portus-2.0.3-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for High Performance Computing 12 is installed
  • AND Package Information
  • libpmi0-17.02.11-6.19 is installed
  • OR libslurm31-17.02.11-6.19 is installed
  • OR perl-slurm-17.02.11-6.19 is installed
  • OR slurm-17.02.11-6.19 is installed
  • OR slurm-auth-none-17.02.11-6.19 is installed
  • OR slurm-config-17.02.11-6.19 is installed
  • OR slurm-devel-17.02.11-6.19 is installed
  • OR slurm-doc-17.02.11-6.19 is installed
  • OR slurm-lua-17.02.11-6.19 is installed
  • OR slurm-munge-17.02.11-6.19 is installed
  • OR slurm-pam_slurm-17.02.11-6.19 is installed
  • OR slurm-plugins-17.02.11-6.19 is installed
  • OR slurm-sched-wiki-17.02.11-6.19 is installed
  • OR slurm-slurmdb-direct-17.02.11-6.19 is installed
  • OR slurm-slurmdbd-17.02.11-6.19 is installed
  • OR slurm-sql-17.02.11-6.19 is installed
  • OR slurm-torque-17.02.11-6.19 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Legacy Software 12 is installed
  • AND Package Information
  • cups154-1.5.4-5 is installed
  • OR cups154-client-1.5.4-5 is installed
  • OR cups154-filters-1.5.4-5 is installed
  • OR cups154-libs-1.5.4-5 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 11 SP1 is installed
  • AND LibVNCServer-0.9.1-154.24 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 11 SP2 is installed
  • AND Package Information
  • boost-license-1.36.0-11.17 is installed
  • OR libboost_program_options1_36_0-1.36.0-11.17 is installed
  • OR libboost_regex1_36_0-1.36.0-11.17 is installed
  • OR libboost_signals1_36_0-1.36.0-11.17 is installed
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Server 11 SP3 is installed
  • AND
  • bash-3.2-147.22.1 is installed
  • OR bash-doc-3.2-147.22.1 is installed
  • OR bash-x86-3.2-147.22.1 is installed
  • OR libreadline5-5.2-147.22.1 is installed
  • OR libreadline5-32bit-5.2-147.22.1 is installed
  • OR libreadline5-x86-5.2-147.22.1 is installed
  • OR readline-doc-5.2-147.22.1 is installed
  • OR Package Information
  • SUSE Linux Enterprise Server for VMWare 11 SP3 is installed
  • AND
  • bash-3.2-147.22.1 is installed
  • OR bash-doc-3.2-147.22.1 is installed
  • OR bash-x86-3.2-147.22.1 is installed
  • OR libreadline5-5.2-147.22.1 is installed
  • OR libreadline5-32bit-5.2-147.22.1 is installed
  • OR libreadline5-x86-5.2-147.22.1 is installed
  • OR readline-doc-5.2-147.22.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 11 SP3 is installed
  • AND Package Information
  • freetype2-2.3.7-25.32.1 is installed
  • OR freetype2-32bit-2.3.7-25.32.1 is installed
  • OR freetype2-x86-2.3.7-25.32.1 is installed
  • OR ft2demos-2.3.7-25.32.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 11 SP4 is installed
  • AND Package Information
  • bind-9.9.6P1-0.5.5 is installed
  • OR bind-chrootenv-9.9.6P1-0.5.5 is installed
  • OR bind-doc-9.9.6P1-0.5.5 is installed
  • OR bind-libs-9.9.6P1-0.5.5 is installed
  • OR bind-libs-32bit-9.9.6P1-0.5.5 is installed
  • OR bind-libs-x86-9.9.6P1-0.5.1 is installed
  • OR bind-utils-9.9.6P1-0.5.5 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 11-SECURITY is installed
  • AND Package Information
  • curl-openssl1-7.19.7-1.64.1 is installed
  • OR libcurl4-openssl1-7.19.7-1.64.1 is installed
  • OR libcurl4-openssl1-32bit-7.19.7-1.64.1 is installed
  • OR libcurl4-openssl1-x86-7.19.7-1.64.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 is installed
  • AND Package Information
  • fuse-2.9.3-3 is installed
  • OR libfuse2-2.9.3-3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1 is installed
  • AND Package Information
  • libHX28-3.18-1 is installed
  • OR libHX28-32bit-3.18-1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1-LTSS is installed
  • AND Package Information
  • libxml2-2.9.1-26.15.1 is installed
  • OR libxml2-2-2.9.1-26.15.1 is installed
  • OR libxml2-2-32bit-2.9.1-26.15.1 is installed
  • OR libxml2-doc-2.9.1-26.15.1 is installed
  • OR libxml2-tools-2.9.1-26.15.1 is installed
  • OR python-libxml2-2.9.1-26.15.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2 is installed
  • AND Package Information
  • aaa_base-13.2+git20140911.61c1681-28 is installed
  • OR aaa_base-extras-13.2+git20140911.61c1681-28 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND Package Information
  • DirectFB-1.7.1-6 is installed
  • OR lib++dfb-1_7-1-1.7.1-6 is installed
  • OR libdirectfb-1_7-1-1.7.1-6 is installed
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Server 12 SP5 is installed
  • AND ucode-intel-20220809-3.46.1 is installed
  • OR Package Information
  • SUSE Linux Enterprise Server for SAP Applications 12 SP5 is installed
  • AND ucode-intel-20220809-3.46.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 is installed
  • AND libmspack0-0.4-14 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server for SAP Applications 12 SP2 is installed
  • AND Package Information
  • libopenssl-devel-1.0.2j-60.52 is installed
  • OR libopenssl1_0_0-1.0.2j-60.52 is installed
  • OR libopenssl1_0_0-32bit-1.0.2j-60.52 is installed
  • OR libopenssl1_0_0-hmac-1.0.2j-60.52 is installed
  • OR libopenssl1_0_0-hmac-32bit-1.0.2j-60.52 is installed
  • OR openssl-1.0.2j-60.52 is installed
  • OR openssl-doc-1.0.2j-60.52 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Software Development Kit 11 SP2 is installed
  • AND apache2-mod_fcgid-2.2-31.27.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Software Development Kit 11 SP3 is installed
  • AND Package Information
  • MozillaFirefox-devel-24.5.0esr-0.8.1 is installed
  • OR mozilla-nspr-devel-4.10.4-0.3.1 is installed
  • OR mozilla-nss-devel-3.16-0.8.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Software Development Kit 11 SP4 is installed
  • AND fvwm2-2.5.26-1.25 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Software Development Kit 12 is installed
  • AND aaa_base-malloccheck-13.2+git20140911.61c1681-1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Software Development Kit 12 SP1 is installed
  • AND MozillaFirefox-devel-38.4.0esr-51 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Software Development Kit 12 SP2 is installed
  • AND Package Information
  • ImageMagick-6.8.8.1-33 is installed
  • OR ImageMagick-devel-6.8.8.1-33 is installed
  • OR libMagick++-6_Q16-3-6.8.8.1-33 is installed
  • OR libMagick++-devel-6.8.8.1-33 is installed
  • OR perl-PerlMagick-6.8.8.1-33 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Software Development Kit 12 SP3 is installed
  • AND accountsservice-devel-0.6.42-14 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Workstation Extension 12 SP2 is installed
  • AND Package Information
  • ImageMagick-6.8.8.1-70.1 is installed
  • OR libMagick++-6_Q16-3-6.8.8.1-70.1 is installed
  • OR libMagickCore-6_Q16-1-32bit-6.8.8.1-70.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Workstation Extension 12 SP4 is installed
  • AND libiso9660-8-0.90-6.3 is installed
    • BACK